Data Privacy & Information Security Policy

Purpose: Protect borrower data and comply with DLG paras 12–14.

Key Provisions:

All KYC and master data stored on SFL’s AWS servers under NBFC control.

Data minimisation, retention, and destruction protocols enforced.

LSPs prohibited from accessing phone contacts/files or sharing data without consent.